Troj/ExpJS-R

Aliases	Exploit.JS.CVE-2010-0806.a Exploit.JS.CVE-2010-0806.b Exploit.JS.CVE-2010-0806.c HTML/Rce.Gen Exploit-CVE-2010-0806 and Exploit:JS/CVE-2010-0806
Category	Viruses and Spyware
Type	Trojan
What to do	If you've received an alert for a virus or spyware, then follow the instructions for removing the threat.
Prevalence	low high

Summary

Summary
Action
More Information


Affected operating systems	Windows
Protection available since	10 March 2010 16:09:50 (GMT)
Last updated	1 July 2010 18:49:28 (GMT)
Detected by	All Sophos products

Free virus scan
Download a Sophos Security Scan

Free virus, spyware, and adware scan
Test your existing anti-virus protection
Find threats your anti-virus missed

Action

Summary
Action
More Information

Please follow the instructions for removing Trojans.

More Information

Summary
Action
More Information

Troj/ExpJS-R is a malicious JavaScript embedded in a web page that attempts to exploit CVE-2010-0806.

Troj/ExpJS-R may attempt to contact subdomains of topix21century.com via http(s).

Files downloaded by Troj/ExpJS-R may include:

- notes.exe
- clipsvc.exe
- rsvm.exe

Samples seen have been proactively detected as Mal/Dropper-Y, or added as Troj/Dloadr-CYS.

Get reports about the latest virus and spyware threats delivered to your computer

In this section

Sophos blogs

Troj/ExpJS-R

Summary

Action

More Information